sprints icon indicating copy to clipboard operation
sprints copied to clipboard
verified publisher icon mdn

Add information about supported <value> to CSP header page

Open contentfree opened this issue 5 years ago • 2 comments

Request type

  • [ ] Please close this issue, I accidentally submitted it without adding any details
  • [ ] New documentation
  • [x] Correction or update

Details

At the CSP header page, the directives are clearly explained but nothing is said about acceptable values. You can glean some info from the examples such as being able to specify just "https:" to only allow HTTPS requests or "none". But publishing detailed information would surely be helpful.

contentfree avatar Nov 10 '20 18:11 contentfree

Would like to take this one

MendyBerger avatar Nov 19 '20 15:11 MendyBerger

@MendyBerger assigned; thanks!

chrisdavidmills avatar Nov 19 '20 15:11 chrisdavidmills